troubleshooting Question
Cannot get multiple VLANs to work on one port for one PC on an Cisco SG300 switch.
Jeff Morlen
asked on
asked on
I have a guest network that was setup kinda odd (not by me).
The management part of this network is on VLAN99 and runs in the 192.168.1.x address space.
This address space includes all the switches, access points, access point controllers and one management PC.
The guest part of this network is on VLAN100 and runs in the 192.168.111.x address space.
The Cisco WLC controller gives out DHCP addresses in the 192.168.111.x space and uses the gateway address of 192.168.111.1, which is a Sonicwall firewall (which is managed by Spectrum business solutions... don't ask).
If you login to the management PC you can manage the WLC and all the switches just fine.
However, because you are on VLAN99 and in the 192.168.1.x address space you cannot get to the internet.
If you login tot he WIFI you cannot manage any hardware but you can get to the internet.
This IS how it is supposed to work.
However, I would like to monitor the firewall, via SNMP, from my management PC on the 192.168.1.x network.
I have assigned a 192.168.111.x address to the PC as it's main address.
I have assigned VLAN100 as an additional VLAN on the port that it's plugged into.
But, it does not work.
The switch that I'm plugged into is a Cisco SG300-10SPF
The port I'm using is configured as:
On the 3650 line of switches that would allow VLAN99 (the default VLAN on the switch) and VLAN100 to use port 8.
On this switch... it just doesn't work.
I'm open to ideas.
The management part of this network is on VLAN99 and runs in the 192.168.1.x address space.
This address space includes all the switches, access points, access point controllers and one management PC.
The guest part of this network is on VLAN100 and runs in the 192.168.111.x address space.
The Cisco WLC controller gives out DHCP addresses in the 192.168.111.x space and uses the gateway address of 192.168.111.1, which is a Sonicwall firewall (which is managed by Spectrum business solutions... don't ask).
If you login to the management PC you can manage the WLC and all the switches just fine.
However, because you are on VLAN99 and in the 192.168.1.x address space you cannot get to the internet.
If you login tot he WIFI you cannot manage any hardware but you can get to the internet.
This IS how it is supposed to work.
However, I would like to monitor the firewall, via SNMP, from my management PC on the 192.168.1.x network.
I have assigned a 192.168.111.x address to the PC as it's main address.
I have assigned VLAN100 as an additional VLAN on the port that it's plugged into.
But, it does not work.
The switch that I'm plugged into is a Cisco SG300-10SPF
The port I'm using is configured as:
interface gigabitethernet8
description "Management PC Link"
switchport trunk allowed vlan add 100
On the 3650 line of switches that would allow VLAN99 (the default VLAN on the switch) and VLAN100 to use port 8.
On this switch... it just doesn't work.
I'm open to ideas.
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 8 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.